Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/SS-V8KpQfE2FwlZtBrDCFtKzxYM.roa
File: SS-V8KpQfE2FwlZtBrDCFtKzxYM.roa (raw, json)
Hash identifier: her3d4PiHFce/YNkVMgThTLPGZJSo4bUbBm7R9/FrFY=
Subject key identifier: 49:2F:95:F0:AA:50:7C:4D:85:C2:56:6D:06:B0:C2:16:D2:B3:C5:83
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 06552DA8
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/SS-V8KpQfE2FwlZtBrDCFtKzxYM.roa
Signing time: Thu 03 Mar 2022 13:37:59 +0000
ROA not before: Thu 03 Mar 2022 13:37:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.179.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106245544 (0x6552da8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Mar 3 13:37:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=492f95f0aa507c4d85c2566d06b0c216d2b3c583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:de:6e:a7:4d:79:6f:40:07:d8:21:8e:31:19:
35:b0:e5:09:ba:53:6c:22:dc:54:57:b1:78:10:bb:
96:b2:b8:51:39:61:71:3f:97:fd:75:10:ed:12:b4:
ae:a5:d0:9d:3d:83:0d:f3:12:50:3f:a7:0d:87:0a:
52:2d:a2:93:e5:db:16:a7:86:3a:ae:8d:59:a8:1a:
56:13:e4:02:6f:0a:97:14:90:3d:1f:15:3a:00:64:
51:53:2d:3b:7b:50:1a:56:e5:be:7d:bf:29:40:e9:
fd:3f:99:a4:ff:a6:50:b7:bd:4e:65:20:62:23:bc:
c4:83:16:83:1e:5f:a7:fa:58:f4:e1:20:ee:e4:70:
e0:e3:0f:b0:6e:58:5b:54:9c:61:ac:84:56:4d:34:
d8:ea:85:11:1b:4f:c9:95:2f:68:8f:18:94:8e:69:
cd:f4:4b:1a:ee:84:25:bf:2a:67:39:42:bb:a7:d5:
ec:55:25:ba:07:74:f9:8d:f1:29:6e:d7:ba:ea:35:
08:f1:1f:66:4b:83:56:11:0c:b9:e7:2f:05:a1:8f:
bc:9e:ea:bb:52:62:63:9f:6e:7e:62:1d:9a:2c:ca:
43:2c:31:e6:d6:37:4a:c7:a1:48:bb:b6:c7:dd:5a:
a7:e8:d3:ae:5f:4c:7c:0f:15:83:27:8d:26:14:e6:
2f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2F:95:F0:AA:50:7C:4D:85:C2:56:6D:06:B0:C2:16:D2:B3:C5:83
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/SS-V8KpQfE2FwlZtBrDCFtKzxYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:35:ce:07:fe:b4:d7:a5:39:d2:1e:7e:42:eb:9b:68:f2:3c:
09:8d:15:4f:82:0b:fd:1d:5f:d5:9e:f0:35:5c:b3:bb:68:16:
6f:cf:8e:5a:f5:05:6c:2d:a5:b5:55:91:5e:66:9b:72:de:84:
70:02:70:ae:64:44:f8:7a:cc:96:67:97:8c:8e:bc:f1:10:09:
a9:da:80:e8:d3:0d:b2:f6:3a:39:d2:a2:9a:85:0a:15:6c:3f:
66:9e:b3:10:b8:2d:e7:f1:dd:9f:90:13:85:b6:7e:38:64:29:
d6:8e:66:96:35:98:95:0a:b4:a1:0e:5a:a9:0e:a2:36:fc:b7:
bd:7c:0d:b7:97:46:0b:2d:fa:5f:57:a1:6b:48:a2:27:c2:8a:
72:06:4c:2e:57:dc:9c:bc:6d:a4:7d:63:8c:51:d6:b8:1f:6d:
61:6c:85:9c:61:49:70:f4:fd:ca:08:c7:ae:e2:b9:48:39:2b:
77:6b:fc:85:f7:f8:05:13:86:7f:b9:e8:63:2d:21:2c:e9:fe:
89:08:5a:ae:86:1a:f8:c1:68:48:b9:ee:7b:8f:3b:c4:16:54:
83:ed:08:f1:f6:29:78:4a:4d:9c:f7:77:05:43:10:ac:3a:e4:
c0:95:65:0f:8e:b1:df:a2:fc:a0:76:55:4c:18:52:90:82:b6:
1c:dd:70:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org